At The Identity Organisation, we're here to help!

    Or drop us a mail!

    Your privacy is important to us, and we want to communicate with you in a way which has your consent and which is in line with UK Law on data protection. As a result of a change in UK law on 25th May 2018, by providing us with your personal details you consent to us processing your data in line with current GDPR requirements.

    Here is where you can review our Privacy & GDPR Statement

    To remove consent at any time, please e-mail info@tidorg.com with the word "unsubscribe" as the subject.

    +44 (0) 1628 308038 info@tidorg.com

    Will Ransomware Extortion Tactics Ever Stop Evolving?

    Ransomware Extortion Tactics

    The latest development in extortion methods by developers of Conti shows we should begin to continually expect new and innovative extortion tactics by cybercriminal gangs moving forward.

    The more the pressure brought to bear, the more likely the ransom will be paid. It’s the very basis for the initial data theft by Maze back in 2019, the rise of data leak sites (and the threat to publish the data), and the other methods of extortion we’ve seen that have been used to increase pressure on ransomware victims.

    But new posts on Conti’s News Victims website show the ransomware gang may have added the threat of selling access to victim networks to the list of extortion tactics. The site lists posts looking for buyers that wish to access specific compromised companies.

    continews

    Source: Krebs on Security

    While this could be a sign that the posting of data may be an extortion tactic of the past (as downloading TBs of data from a Tor takes days or weeks), it does demonstrate that ransomware gangs are continually evolving their tactics – balancing the ability to extort a ransom with an ability to easily monetize the attack in other ways should the ransom not be paid.

    Either way, ransomware gangs are fully intent on making the most of the access gained to a victim network. So, it’s important that you stop these attacks before they ever start; putting Security Awareness Training into place helps ensure that those phishing emails that make if past security solutions are stopped by your last line of defense – users.

    Free Ransomware Simulator Tool

    Threat actors are constantly coming out with new strains to evade detection. Is your network effective in blocking all of them when employees fall for social engineering attacks?

    KnowBe4’s “RanSim” gives you a quick look at the effectiveness of your existing network protection. RanSim will simulate 22 ransomware infection scenarios and 1 cryptomining infection scenario and show you if a workstation is vulnerable.

    RansIm-Monitor3

    Here’s how it works:

    • 100% harmless simulation of real ransomware and cryptomining infections
    • Does not use any of your own files
    • Tests 21 types of infection scenarios
    • Just download the install and run it 
    • Results in a few minutes!
    Get RanSim!

    PS: Don’t like to click on redirected buttons? Cut & Paste this link in your browser: https://info.knowbe4.com/ransomware-simulator-tool-partner?partnerid=001a000001lWEoJAAW

    Sign Up to the TIO Intel Alerts!

    Back To Top